XRay PC

General Topics
1

Hi anti-malware fighters,

XRayPC, not a program that removes spyware and malware, but beautifully detects processes that are running and which of those are legit and which are suspect. Get it from here:
http://www.x-raypc.com/ How to use: http://www.x-raypc.com/help.php
I think it could be used next to HijackThis and Toolbarcop or BHODemon, a nice program in this range.

polonus

2

I downloaded it and ran it once. I like what it does. Even though I recognized all the entries, I wanted to see what the online analyzer would give. But, I get an error message shortly after clicking the Online Analyzer button … “Error trying to reach the triage server” … even though I have given it passage rights through ZA Free. I even removed the program from ZA once and tried again giving Xray all rights (internet & server) in ZA. Same results … same error message.

What am I doing wrong? ???

3

Dependant on OS. In Win XP works OK even on a mem stick, maybe image server was down?

polonus

4

Yes, I am using XP Home. Yeah, maybe the image server was down. I will try it again.

5

No Luck. I have tried everything I can think of to do. I even deleted the program and downloaded it again. Here’s a screen shot:

6

Hello,

I to am getting the same error message.

7

Hi Charley and Justin,

You should analyze per process, if it is not known it can be uploaded. Another thing is the log that can be safed is identical to a HijackThis one, so it can be analyzed with the same online analyzers as well.

greets,

polonus

With a Windows XP SP2 with Software FW this program gives no problems for me.

D

8

Thanks for that post, Polonus. Now, it works! :slight_smile:

I do not know why I did not think of doing that. ???

I feel like such a … DUH!!! ;D

9

Hi CharleyO,

Well so much the better you got it working, because it is nice as a second opinion or addition to the famous HijackThis and Eddy’s HiLoa proggies. I don’t have all these proggies on the comp but on the mem stick.
Good to have is ShareEnum from sysinternals too. There you can see all the processes’ privileges, what is not completely secure. I have that there too.
And HijackThis and XrayPC feel much better with Process Explorer in the neighbourhood. Next use FileAlyzer and a good Hex Viewer, and you have all the basic analytical tools to encounter any file, packer and code and all, hashes included.
Enjoy,

friend polonus